Posts Tagged ‘dependencies’

Python script dependencies

03Oct24

TL;DR ‘–break-system-packages’ sounds scary, but (after some careful evaluation) is likely to be the right way to go for infrastructure automation, at least until uv is ready for production. Python venvs seem to be what we’re expected to use, but introduce additional complexity and associated fragility, which seems to make them a poor choice for […]


Filed under: code   |  Leave a Comment
Tags: , , , , , , , , , , , , , , , , ,

Roll up, rollup, get your Dependabot PRs together here

09Mar23

While I wait for GitHub to get their act together on my Dependabot Wishlist I’ve created a little script for my first frustration – rollups. Another morning, another patch release of Dart, another 4 Dependabot PRs in my inbox: Only this time I was able to simply run: and the subsequent 3 PRs were rolled […]


Filed under: howto, software   |  Leave a Comment
Tags: , , , , , , , , , ,

Dependabot Wishlist

05Jan23

GitHub is at the heart of how I do work, and Dependabot is one of the core tools. Even before we started using OpenSSF Scorecards, which pushed us to pin dependencies, Dependabot was something we used a lot to ensure that things were up to date. But, Dependabot isn’t perfect, and looking at the discussion […]


Filed under: could_do_better, software   |  Leave a Comment
Tags: , , , , ,

Which Java?

14Aug20

Or should that be: TL;DR Practices for installing and maintaining Java have evolved over time, which can lead to tension between teams who are set in a particular way, and other teams who see that as backward. The present state of the art is not to have Java on hosts at all, and to containerise […]


Filed under: Docker, technology   |  Leave a Comment
Tags: , , , , , , , , , , , ,